[PHPBB3-15729] Don't unnecessarily encode email headers in Base64

XML

Word

Printable

Details

Type: Improvement
Status: Unverified Fix (View Workflow)
Priority: Minor
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 3.3.5-RC1
Component/s: Notification System
Labels:
- Base64
- Email
- Headers

Description

Currently, phpBB always encodes the following headers in Base64:

To
Subject
From
Reply-To

It is appropriate to encode these in Base64 if they include characters that are not contained in the ASCII character set. However, if these fields only contain ASCII characters they should not be Base64 encoded. Encoding them as Base64 makes them non-human readable when looking at the raw email source. It is also a common obfuscation tactic in spam, which is why Spamassassin tests for these with the FROM_EXCESS_BASE64 test (does not apply to the "To" and "Subject" fields).

It should be fairly simple to have phpBB check for non-ASCII characters before encoding these headers in Base64.

Attachments

Issue Links

caused

PHPBB3-16911 Invaild email subject when containing question mark character

Open

PHPBB3-16901 ASCII email encoding does not work for everyone

Patch Awaiting Review

is duplicated by

PHPBB3-16826 Unnecessary Use of Base64 Encoding in Email Headers

Open

Activity

People

Assignee:: Marc

Reporter:: sorenstoutner [X] (Inactive)

Votes:: 1 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 25/Jul/18 12:48 AM

Updated:: 18/Nov/21 5:55 AM

Resolved:: 23/Aug/21 7:26 PM